SSH Honeypots Miss Most Post-Login Attacks by Focusing on Interactive Shells

SSH honeypots, widely used in cyber defense, may miss most real-world post-login attacker activity, according to new research that challenges long-standing assumptions in deception technology. A recent study titled “Ghost Without Shell: Measuring Non-Interactive SSH Attacks on Honeypots” by researchers from the Czech Technical University reveals that most attackers do not interact with SSH systems […]

The post SSH Honeypots Miss Most Post-Login Attacks by Focusing on Interactive Shells appeared first on Cyber Security News.

This article has been indexed from Cyber Security News

Read the original article: